CSOonline

GitHub secrets: Deleted files still pose risks

Deleted files within public GitHub repositories could still be exposing secrets like API keys, tokens, and credentials, if threat actors knew where and how to look. Cybersecurity researcher Sharon ...
ZDNet

Over 100,000 GitHub repos have leaked API or cryptographic keys

A scan of billions of files from 13 percent of all GitHub public repositories over a period of six months has revealed that over 100,000 repos have leaked API tokens and cryptographic keys, with ...

New ‘company knowledge’ feature enables ChatGPT to search files in external services

The feature can be activated using a new button below the chatbot’s message box. When users click it for the first time, ...
Bleeping Computer

GitHub comments abused to push malware via Microsoft repo URLs

A GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with Microsoft repositories, making the files appear trustworthy. While most ...
Ars Technica

After 18 months, GitHub’s big code search overhaul is generally available

GitHub has announced the general availability of a ground-up rework of its code search that has been in development for years. The changes include substantial new functionality that is significantly ...